Alternatives and similar repositories for libsigscan

Users that are interested in libsigscan are comparing it to the libraries listed below

• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 5 years ago
• chen-charles / PEDetour
  modify binary Portable Executable to hook its export functions
  ☆67Updated 6 years ago
• hasherezade / IAT_patcher_samples
  Sample libraries to be used with IAT Patcher
  ☆36Updated 3 years ago
• tinysec / runwithdll
  windows create process with a dll load first time via LdrHook
  ☆31Updated 9 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆44Updated 12 years ago
• tandasat / cs_driver
  A sample project for using Capstone from a driver in Visual Studio 2015
  ☆36Updated 9 years ago
• glmcdona / MALM
  MALM: Malware Monitor
  ☆49Updated 12 years ago
• avast / yaracpp
  C++ wrapper for YARA.
  ☆45Updated 5 years ago
• maldevel / PEdumper
  Dump Windows PE file information in C
  ☆24Updated 10 years ago
• edix / MalwareResourceScanner
  Scanning and identifying XOR encrypted PE files in PE resources
  ☆29Updated 11 years ago
• libyal / libmsiecf
  Library and tools to access the Microsoft Internet Explorer (MSIE) Cache File (index.dat) files
  ☆16Updated last year
• univm / univm
  A plugin for x64dbg for x86 emulation powered by the Unicorn-engine.
  ☆29Updated 9 years ago
• Cr4sh / SimpleUnpacker
  Simple tool for unpacking packed/protected malware executables.
  ☆33Updated 14 years ago
• hasherezade / ViDi
  ViDi Visual Disassembler (experimental)
  ☆78Updated last month
• avast / pelib
  PE file manipulation library.
  ☆64Updated 5 years ago
• crackinglandia / aadp
  Anti-Anti-Debugger Plugins
  ☆19Updated 12 years ago
• ofercas / ransomware_begone
  ransomware_begone
  ☆42Updated 9 years ago
• mrexodia / YaraGen
  Plugin for x64dbg to generate Yara rules from function basic blocks.
  ☆37Updated 8 years ago
• psaneme / Kung-Fu-Malware
  ☆34Updated 7 years ago
• sogeti-esec-lab / REBoot
  Bootkits Revisited
  ☆40Updated 11 years ago
• evandowning / windbg-trace
  Use WinDBG to trace the Windows API calls of any Portable Executable file
  ☆32Updated 8 years ago
• stephenfewer / OllySocketTrace
  OllySocketTrace is a plugin for OllyDbg to trace the socket operations being performed by a process.
  ☆63Updated 14 years ago
• dev-zzo / ntcore
  Simple standalone bundle of NT core APIs
  ☆25Updated 9 years ago
• mandiant / unicorn-libemu-shim
  libemu shim layer and win32 environment for Unicorn Engine
  ☆73Updated 8 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆39Updated 8 years ago
• libyal / libfwevt
  Library for Windows XML Event Log (EVTX) data types
  ☆18Updated this week
• honeynet / capture-hpc
  ☆31Updated 10 years ago
• codereversing / pe_infector
  PE Infector/Cryptor source code
  ☆21Updated 3 years ago
• 0xdabbad00 / OpenHIPS
  OpenHIPS prevents exploitation of Windows systems
  ☆35Updated 12 years ago
• int0 / ltmdm64_poc
  ☆30Updated 8 years ago